expressCart/routes/product.js

const express = require('express');
const common = require('../lib/common');
const { restrict, checkAccess } = require('../lib/auth');
const { indexProducts } = require('../lib/indexing');
const { validateJson } = require('../lib/schema');
const colors = require('colors');
const rimraf = require('rimraf');
const fs = require('fs');
const path = require('path');
const router = express.Router();

router.get('/admin/products/:page?', restrict, async (req, res, next) => {
    let pageNum = 1;
    if(req.params.page){
        pageNum = req.params.page;
    }

    // Get our paginated data
    const products = await common.paginateData(false, req, pageNum, 'products', {}, { productAddedDate: -1 });

    res.render('products', {
        title: 'Cart',
        results: products.data,
        totalItemCount: products.totalItems,
        pageNum,
        paginateUrl: 'admin/products',
        resultType: 'top',
        session: req.session,
        admin: true,
        config: req.app.config,
        message: common.clearSessionValue(req.session, 'message'),
        messageType: common.clearSessionValue(req.session, 'messageType'),
        helpers: req.handlebars.helpers
    });
});

router.get('/admin/products/filter/:search', restrict, async (req, res, next) => {
    const db = req.app.db;
    const searchTerm = req.params.search;
    const productsIndex = req.app.productsIndex;

    const lunrIdArray = [];
    productsIndex.search(searchTerm).forEach((id) => {
        lunrIdArray.push(common.getId(id.ref));
    });

    // we search on the lunr indexes
    const results = await db.products.find({ _id: { $in: lunrIdArray } }).toArray();

    if(req.apiAuthenticated){
        res.status(200).json(results);
        return;
    }

    res.render('products', {
        title: 'Results',
        results: results,
        resultType: 'filtered',
        admin: true,
        config: req.app.config,
        session: req.session,
        searchTerm: searchTerm,
        message: common.clearSessionValue(req.session, 'message'),
        messageType: common.clearSessionValue(req.session, 'messageType'),
        helpers: req.handlebars.helpers
    });
});

// insert form
router.get('/admin/product/new', restrict, checkAccess, (req, res) => {
    res.render('product-new', {
        title: 'New product',
        session: req.session,
        productTitle: common.clearSessionValue(req.session, 'productTitle'),
        productDescription: common.clearSessionValue(req.session, 'productDescription'),
        productPrice: common.clearSessionValue(req.session, 'productPrice'),
        productPermalink: common.clearSessionValue(req.session, 'productPermalink'),
        message: common.clearSessionValue(req.session, 'message'),
        messageType: common.clearSessionValue(req.session, 'messageType'),
        editor: true,
        admin: true,
        helpers: req.handlebars.helpers,
        config: req.app.config
    });
});

// insert new product form action
router.post('/admin/product/insert', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    // Process supplied options
    let productOptions = req.body.productOptions;
    if(productOptions && typeof productOptions !== 'object'){
        try{
            productOptions = JSON.parse(req.body.productOptions);
        }catch(ex){
            console.log('Failure to parse options');
        }
    }

    const doc = {
        productPermalink: req.body.productPermalink,
        productTitle: common.cleanHtml(req.body.productTitle),
        productPrice: req.body.productPrice,
        productDescription: common.cleanHtml(req.body.productDescription),
        productPublished: common.convertBool(req.body.productPublished),
        productTags: req.body.productTags,
        productOptions: productOptions || null,
        productComment: common.checkboxBool(req.body.productComment),
        productAddedDate: new Date(),
        productStock: common.safeParseInt(req.body.productStock) || null,
        productStockDisable: common.convertBool(req.body.productStockDisable)
    };

    // Validate the body again schema
    const schemaValidate = validateJson('newProduct', doc);
    if(!schemaValidate.result){
        console.log('schemaValidate errors', schemaValidate.errors);
        res.status(400).json(schemaValidate.errors);
        return;
    }

    // Check permalink doesn't already exist
    const product = await db.products.countDocuments({ productPermalink: req.body.productPermalink });
    if(product > 0 && req.body.productPermalink !== ''){
        res.status(400).json({ message: 'Permalink already exists. Pick a new one.' });
        return;
    }

    try{
        const newDoc = await db.products.insertOne(doc);
        // get the new ID
        const newId = newDoc.insertedId;

        // add to lunr index
        indexProducts(req.app)
        .then(() => {
            res.status(200).json({
                message: 'New product successfully created',
                productId: newId
            });
        });
    }catch(ex){
        console.log(colors.red('Error inserting document: ' + ex));
        res.status(400).json({ message: 'Error inserting document' });
    }
});

// render the editor
router.get('/admin/product/edit/:id', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    const images = await common.getImages(req.params.id, req, res);
    const product = await db.products.findOne({ _id: common.getId(req.params.id) });
    if(!product){
        // If API request, return json
        if(req.apiAuthenticated){
            res.status(400).json({ message: 'Product not found' });
            return;
        }
        req.session.message = 'Product not found';
        req.session.messageType = 'danger';
        res.redirect('/admin/products');
        return;
    }
    let options = {};
    if(product.productOptions){
        options = product.productOptions;
        if(typeof product.productOptions !== 'object'){
            options = JSON.parse(product.productOptions);
        }
    }

    // If API request, return json
    if(req.apiAuthenticated){
        res.status(200).json(product);
        return;
    }

    res.render('product-edit', {
        title: 'Edit product',
        result: product,
        images: images,
        options: options,
        admin: true,
        session: req.session,
        message: common.clearSessionValue(req.session, 'message'),
        messageType: common.clearSessionValue(req.session, 'messageType'),
        config: req.app.config,
        editor: true,
        helpers: req.handlebars.helpers
    });
});

// Remove option from product
router.post('/admin/product/removeoption', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;
    const product = await db.products.findOne({ _id: common.getId(req.body.productId) });
    if(product && product.productOptions){
        const opts = product.productOptions;
        delete opts[req.body.optName];

        try{
            const updateOption = await db.products.findOneAndUpdate({ _id: common.getId(req.body.productId) }, { $set: { productOptions: opts } });
            if(updateOption.ok === 1){
                res.status(200).json({ message: 'Option successfully removed' });
                return;
            }
            res.status(400).json({ message: 'Failed to remove option. Please try again.' });
            return;
        }catch(ex){
            res.status(400).json({ message: 'Failed to remove option. Please try again.' });
            return;
        }
    }
    res.status(400).json({ message: 'Product not found. Try saving before removing.' });
});

// Update an existing product form action
router.post('/admin/product/update', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    const product = await db.products.findOne({ _id: common.getId(req.body.productId) });

    if(!product){
        res.status(400).json({ message: 'Failed to update product' });
        return;
    }
    const count = await db.products.countDocuments({ productPermalink: req.body.productPermalink, _id: { $ne: common.getId(product._id) } });
    if(count > 0 && req.body.productPermalink !== ''){
        res.status(400).json({ message: 'Permalink already exists. Pick a new one.' });
        return;
    }
    const images = await common.getImages(req.body.productId, req, res);
    // Process supplied options
    let productOptions = req.body.productOptions;
    if(productOptions && typeof productOptions !== 'object'){
        try{
            productOptions = JSON.parse(req.body.productOptions);
        }catch(ex){
            console.log('Failure to parse options');
        }
    }

    const productDoc = {
        productId: req.body.productId,
        productPermalink: req.body.productPermalink,
        productTitle: common.cleanHtml(req.body.productTitle),
        productPrice: req.body.productPrice,
        productDescription: common.cleanHtml(req.body.productDescription),
        productPublished: common.convertBool(req.body.productPublished),
        productTags: req.body.productTags,
        productOptions: productOptions || null,
        productComment: common.checkboxBool(req.body.productComment),
        productStock: common.safeParseInt(req.body.productStock) || null,
        productStockDisable: common.convertBool(req.body.productStockDisable)
    };

    // Validate the body again schema
    const schemaValidate = validateJson('editProduct', productDoc);
    if(!schemaValidate.result){
        res.status(400).json(schemaValidate.errors);
        return;
    }

    // Remove productId from doc
    delete productDoc.productId;

    // if no featured image
    if(!product.productImage){
        if(images.length > 0){
            productDoc.productImage = images[0].path;
        }else{
            productDoc.productImage = '/uploads/placeholder.png';
        }
    }else{
        productDoc.productImage = product.productImage;
    }

    try{
        await db.products.updateOne({ _id: common.getId(req.body.productId) }, { $set: productDoc }, {});
        // Update the index
        indexProducts(req.app)
        .then(() => {
            res.status(200).json({ message: 'Successfully saved', product: productDoc });
        });
    }catch(ex){
        res.status(400).json({ message: 'Failed to save. Please try again' });
    }
});

// delete a product
router.post('/admin/product/delete', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    // remove the product
    await db.products.deleteOne({ _id: common.getId(req.body.productId) }, {});

    // delete any images and folder
    rimraf('public/uploads/' + req.body.productId, (err) => {
        if(err){
            console.info(err.stack);
            res.status(400).json({ message: 'Failed to delete product' });
        }

        // re-index products
        indexProducts(req.app)
        .then(() => {
            res.status(200).json({ message: 'Product successfully deleted' });
        });
    });
});

// update the published state based on an ajax call from the frontend
router.post('/admin/product/publishedState', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    try{
        await db.products.updateOne({ _id: common.getId(req.body.id) }, { $set: { productPublished: common.convertBool(req.body.state) } }, { multi: false });
        res.status(200).json({ message: 'Published state updated' });
    }catch(ex){
        console.error(colors.red('Failed to update the published state: ' + ex));
        res.status(400).json({ message: 'Published state not updated' });
    }
});

// set as main product image
router.post('/admin/product/setasmainimage', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    try{
        // update the productImage to the db
        await db.products.updateOne({ _id: common.getId(req.body.product_id) }, { $set: { productImage: req.body.productImage } }, { multi: false });
        res.status(200).json({ message: 'Main image successfully set' });
    }catch(ex){
        res.status(400).json({ message: 'Unable to set as main image. Please try again.' });
    }
});

// deletes a product image
router.post('/admin/product/deleteimage', restrict, checkAccess, async (req, res) => {
    const db = req.app.db;

    // get the productImage from the db
    const product = await db.products.findOne({ _id: common.getId(req.body.product_id) });
    if(!product){
        res.status(400).json({ message: 'Product not found' });
        return;
    }
    if(req.body.productImage === product.productImage){
        // set the productImage to null
        await db.products.updateOne({ _id: common.getId(req.body.product_id) }, { $set: { productImage: null } }, { multi: false });

        // remove the image from disk
        fs.unlink(path.join('public', req.body.productImage), (err) => {
            if(err){
                res.status(400).json({ message: 'Image not removed, please try again.' });
            }else{
                res.status(200).json({ message: 'Image successfully deleted' });
            }
        });
    }else{
        // remove the image from disk
        fs.unlink(path.join('public', req.body.productImage), (err) => {
            if(err){
                res.status(400).json({ message: 'Image not removed, please try again.' });
            }else{
                res.status(200).json({ message: 'Image successfully deleted' });
            }
        });
    }
});

module.exports = router;
Route separation 2018-02-05 23:20:44 +10:00			`const express = require('express');`
Moved common helper to more logical location 2018-02-06 04:20:30 +10:00			`const common = require('../lib/common');`
Linting and refactoring 2019-06-15 14:46:08 +10:00			`const { restrict, checkAccess } = require('../lib/auth');`
Starting to add schema validation to API endpoints 2019-06-17 20:21:45 +10:00			`const { indexProducts } = require('../lib/indexing');`
			`const { validateJson } = require('../lib/schema');`
Route separation 2018-02-05 23:20:44 +10:00			`const colors = require('colors');`
			`const rimraf = require('rimraf');`
			`const fs = require('fs');`
			`const path = require('path');`
			`const router = express.Router();`

Added pagination to products and orders in admin 2020-03-19 16:32:52 +10:00			`router.get('/admin/products/:page?', restrict, async (req, res, next) => {`
			`let pageNum = 1;`
			`if(req.params.page){`
			`pageNum = req.params.page;`
			`}`

			`// Get our paginated data`
			`const products = await common.paginateData(false, req, pageNum, 'products', {}, { productAddedDate: -1 });`

Refactoring 2019-10-26 11:08:53 +10:00			`res.render('products', {`
			`title: 'Cart',`
Added pagination to products and orders in admin 2020-03-19 16:32:52 +10:00			`results: products.data,`
			`totalItemCount: products.totalItems,`
			`pageNum,`
			`paginateUrl: 'admin/products',`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`resultType: 'top',`
Refactoring 2019-10-26 11:08:53 +10:00			`session: req.session,`
			`admin: true,`
			`config: req.app.config,`
			`message: common.clearSessionValue(req.session, 'message'),`
			`messageType: common.clearSessionValue(req.session, 'messageType'),`
			`helpers: req.handlebars.helpers`
Route separation 2018-02-05 23:20:44 +10:00			`});`
			`});`

Refactoring product route 2019-11-09 12:59:20 +10:00			`router.get('/admin/products/filter/:search', restrict, async (req, res, next) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`
Linting 2019-07-12 18:06:34 +10:00			`const searchTerm = req.params.search;`
			`const productsIndex = req.app.productsIndex;`
Route separation 2018-02-05 23:20:44 +10:00
Linting 2019-07-12 18:06:34 +10:00			`const lunrIdArray = [];`
Route separation 2018-02-05 23:20:44 +10:00			`productsIndex.search(searchTerm).forEach((id) => {`
			`lunrIdArray.push(common.getId(id.ref));`
			`});`

			`// we search on the lunr indexes`
Refactoring 2019-10-26 11:08:53 +10:00			`const results = await db.products.find({ _id: { $in: lunrIdArray } }).toArray();`
Refactoring product route 2019-11-09 12:59:20 +10:00
			`if(req.apiAuthenticated){`
			`res.status(200).json(results);`
			`return;`
			`}`

Refactoring 2019-10-26 11:08:53 +10:00			`res.render('products', {`
			`title: 'Results',`
			`results: results,`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`resultType: 'filtered',`
Refactoring 2019-10-26 11:08:53 +10:00			`admin: true,`
			`config: req.app.config,`
			`session: req.session,`
			`searchTerm: searchTerm,`
			`message: common.clearSessionValue(req.session, 'message'),`
			`messageType: common.clearSessionValue(req.session, 'messageType'),`
			`helpers: req.handlebars.helpers`
Route separation 2018-02-05 23:20:44 +10:00			`});`
			`});`

			`// insert form`
Linting and refactoring 2019-06-15 14:46:08 +10:00			`router.get('/admin/product/new', restrict, checkAccess, (req, res) => {`
Normalise file names 2020-01-01 19:26:21 +10:00			`res.render('product-new', {`
Route separation 2018-02-05 23:20:44 +10:00			`title: 'New product',`
			`session: req.session,`
			`productTitle: common.clearSessionValue(req.session, 'productTitle'),`
			`productDescription: common.clearSessionValue(req.session, 'productDescription'),`
			`productPrice: common.clearSessionValue(req.session, 'productPrice'),`
			`productPermalink: common.clearSessionValue(req.session, 'productPermalink'),`
			`message: common.clearSessionValue(req.session, 'message'),`
			`messageType: common.clearSessionValue(req.session, 'messageType'),`
			`editor: true,`
			`admin: true,`
			`helpers: req.handlebars.helpers,`
Started adding some tests 2018-02-23 03:41:24 +10:00			`config: req.app.config`
Route separation 2018-02-05 23:20:44 +10:00			`});`
			`});`

			`// insert new product form action`
Refactoring 2019-10-26 11:08:53 +10:00			`router.post('/admin/product/insert', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`

Starting to add schema validation to API endpoints 2019-06-17 20:21:45 +10:00			`// Process supplied options`
			`let productOptions = req.body.productOptions;`
			`if(productOptions && typeof productOptions !== 'object'){`
			`try{`
			`productOptions = JSON.parse(req.body.productOptions);`
			`}catch(ex){`
			`console.log('Failure to parse options');`
			`}`
			`}`

Linting 2019-07-12 18:06:34 +10:00			`const doc = {`
Starting to add schema validation to API endpoints 2019-06-17 20:21:45 +10:00			`productPermalink: req.body.productPermalink,`
			`productTitle: common.cleanHtml(req.body.productTitle),`
Fix product price and amount global searching 2020-01-08 18:28:29 +10:00			`productPrice: req.body.productPrice,`
Starting to add schema validation to API endpoints 2019-06-17 20:21:45 +10:00			`productDescription: common.cleanHtml(req.body.productDescription),`
			`productPublished: common.convertBool(req.body.productPublished),`
			`productTags: req.body.productTags,`
			`productOptions: productOptions \|\| null,`
			`productComment: common.checkboxBool(req.body.productComment),`
Stock management changes 2019-02-09 20:46:41 +10:00			`productAddedDate: new Date(),`
Allow disabling stock for certain products 2020-03-22 19:23:47 +10:00			`productStock: common.safeParseInt(req.body.productStock) \|\| null,`
			`productStockDisable: common.convertBool(req.body.productStockDisable)`
Route separation 2018-02-05 23:20:44 +10:00			`};`

Starting to add schema validation to API endpoints 2019-06-17 20:21:45 +10:00			`// Validate the body again schema`
Handle schema validation properly and return error 2019-11-16 12:23:16 +10:00			`const schemaValidate = validateJson('newProduct', doc);`
			`if(!schemaValidate.result){`
			`console.log('schemaValidate errors', schemaValidate.errors);`
Fix API endpoint for product insert 2019-12-16 13:40:56 +10:00			`res.status(400).json(schemaValidate.errors);`
Starting to add schema validation to API endpoints 2019-06-17 20:21:45 +10:00			`return;`
			`}`

Fixed new product insert 2019-10-26 11:20:58 +10:00			`// Check permalink doesn't already exist`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`const product = await db.products.countDocuments({ productPermalink: req.body.productPermalink });`
Refactoring 2019-10-26 11:08:53 +10:00			`if(product > 0 && req.body.productPermalink !== ''){`
Fix API endpoint for product insert 2019-12-16 13:40:56 +10:00			`res.status(400).json({ message: 'Permalink already exists. Pick a new one.' });`
Refactoring 2019-10-26 11:08:53 +10:00			`return;`
			`}`

			`try{`
Fixed new product insert 2019-10-26 11:20:58 +10:00			`const newDoc = await db.products.insertOne(doc);`
Refactoring 2019-10-26 11:08:53 +10:00			`// get the new ID`
Fixed new product insert 2019-10-26 11:20:58 +10:00			`const newId = newDoc.insertedId;`
Refactoring 2019-10-26 11:08:53 +10:00
			`// add to lunr index`
			`indexProducts(req.app)`
			`.then(() => {`
Fix API endpoint for product insert 2019-12-16 13:40:56 +10:00			`res.status(200).json({`
			`message: 'New product successfully created',`
			`productId: newId`
			`});`
Refactoring 2019-10-26 11:08:53 +10:00			`});`
			`}catch(ex){`
			`console.log(colors.red('Error inserting document: ' + ex));`
Fix API endpoint for product insert 2019-12-16 13:40:56 +10:00			`res.status(400).json({ message: 'Error inserting document' });`
Refactoring 2019-10-26 11:08:53 +10:00			`}`
Route separation 2018-02-05 23:20:44 +10:00			`});`

			`// render the editor`
Refactoring 2019-10-26 11:08:53 +10:00			`router.get('/admin/product/edit/:id', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`

Refactoring 2019-10-26 11:08:53 +10:00			`const images = await common.getImages(req.params.id, req, res);`
			`const product = await db.products.findOne({ _id: common.getId(req.params.id) });`
			`if(!product){`
Refactoring product route 2019-11-09 12:59:20 +10:00			`// If API request, return json`
			`if(req.apiAuthenticated){`
			`res.status(400).json({ message: 'Product not found' });`
			`return;`
			`}`
Refactoring 2019-10-26 11:08:53 +10:00			`req.session.message = 'Product not found';`
			`req.session.messageType = 'danger';`
			`res.redirect('/admin/products');`
			`return;`
			`}`
			`let options = {};`
			`if(product.productOptions){`
			`options = product.productOptions;`
Moved form to API endpoint + fixed opts 2019-12-16 12:30:30 +10:00			`if(typeof product.productOptions !== 'object'){`
			`options = JSON.parse(product.productOptions);`
			`}`
Refactoring 2019-10-26 11:08:53 +10:00			`}`
Route separation 2018-02-05 23:20:44 +10:00
Refactoring product route 2019-11-09 12:59:20 +10:00			`// If API request, return json`
			`if(req.apiAuthenticated){`
			`res.status(200).json(product);`
			`return;`
			`}`

Normalise file names 2020-01-01 19:26:21 +10:00			`res.render('product-edit', {`
Refactoring 2019-10-26 11:08:53 +10:00			`title: 'Edit product',`
			`result: product,`
			`images: images,`
			`options: options,`
			`admin: true,`
			`session: req.session,`
			`message: common.clearSessionValue(req.session, 'message'),`
			`messageType: common.clearSessionValue(req.session, 'messageType'),`
			`config: req.app.config,`
			`editor: true,`
			`helpers: req.handlebars.helpers`
Route separation 2018-02-05 23:20:44 +10:00			`});`
			`});`

Refactoring 2019-10-26 11:08:53 +10:00			`// Remove option from product`
			`router.post('/admin/product/removeoption', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`
Refactoring 2019-10-26 11:08:53 +10:00			`const product = await db.products.findOne({ _id: common.getId(req.body.productId) });`
			`if(product && product.productOptions){`
			`const opts = product.productOptions;`
			`delete opts[req.body.optName];`
Route separation 2018-02-05 23:20:44 +10:00
Refactoring 2019-10-26 11:08:53 +10:00			`try{`
Moved form to API endpoint + fixed opts 2019-12-16 12:30:30 +10:00			`const updateOption = await db.products.findOneAndUpdate({ _id: common.getId(req.body.productId) }, { $set: { productOptions: opts } });`
			`if(updateOption.ok === 1){`
Refactoring 2019-10-26 11:08:53 +10:00			`res.status(200).json({ message: 'Option successfully removed' });`
Adding tests for updating products 2019-06-20 13:14:04 +10:00			`return;`
			`}`
Refactoring 2019-10-26 11:08:53 +10:00			`res.status(400).json({ message: 'Failed to remove option. Please try again.' });`
			`return;`
			`}catch(ex){`
			`res.status(400).json({ message: 'Failed to remove option. Please try again.' });`
			`return;`
			`}`
			`}`
			`res.status(400).json({ message: 'Product not found. Try saving before removing.' });`
			`});`
Adding tests for updating products 2019-06-20 13:14:04 +10:00
Refactoring 2019-10-26 11:08:53 +10:00			`// Update an existing product form action`
			`router.post('/admin/product/update', restrict, checkAccess, async (req, res) => {`
			`const db = req.app.db;`

			`const product = await db.products.findOne({ _id: common.getId(req.body.productId) });`

			`if(!product){`
Moved form to API endpoint + fixed opts 2019-12-16 12:30:30 +10:00			`res.status(400).json({ message: 'Failed to update product' });`
Refactoring 2019-10-26 11:08:53 +10:00			`return;`
			`}`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`const count = await db.products.countDocuments({ productPermalink: req.body.productPermalink, _id: { $ne: common.getId(product._id) } });`
Refactoring 2019-10-26 11:08:53 +10:00			`if(count > 0 && req.body.productPermalink !== ''){`
Moved form to API endpoint + fixed opts 2019-12-16 12:30:30 +10:00			`res.status(400).json({ message: 'Permalink already exists. Pick a new one.' });`
Refactoring 2019-10-26 11:08:53 +10:00			`return;`
			`}`
			`const images = await common.getImages(req.body.productId, req, res);`
			`// Process supplied options`
			`let productOptions = req.body.productOptions;`
			`if(productOptions && typeof productOptions !== 'object'){`
			`try{`
			`productOptions = JSON.parse(req.body.productOptions);`
			`}catch(ex){`
			`console.log('Failure to parse options');`
			`}`
			`}`

			`const productDoc = {`
			`productId: req.body.productId,`
			`productPermalink: req.body.productPermalink,`
			`productTitle: common.cleanHtml(req.body.productTitle),`
Fix product price and amount global searching 2020-01-08 18:28:29 +10:00			`productPrice: req.body.productPrice,`
Refactoring 2019-10-26 11:08:53 +10:00			`productDescription: common.cleanHtml(req.body.productDescription),`
			`productPublished: common.convertBool(req.body.productPublished),`
			`productTags: req.body.productTags,`
			`productOptions: productOptions \|\| null,`
			`productComment: common.checkboxBool(req.body.productComment),`
Allow disabling stock for certain products 2020-03-22 19:23:47 +10:00			`productStock: common.safeParseInt(req.body.productStock) \|\| null,`
			`productStockDisable: common.convertBool(req.body.productStockDisable)`
Refactoring 2019-10-26 11:08:53 +10:00			`};`

			`// Validate the body again schema`
Handle schema validation properly and return error 2019-11-16 12:23:16 +10:00			`const schemaValidate = validateJson('editProduct', productDoc);`
			`if(!schemaValidate.result){`
Fixed validation, added modal errors + partial 2020-03-17 18:38:46 +10:00			`res.status(400).json(schemaValidate.errors);`
Refactoring 2019-10-26 11:08:53 +10:00			`return;`
			`}`

			`// Remove productId from doc`
			`delete productDoc.productId;`

			`// if no featured image`
			`if(!product.productImage){`
			`if(images.length > 0){`
Linting 2019-11-03 09:18:34 +10:00			`productDoc.productImage = images[0].path;`
Refactoring 2019-10-26 11:08:53 +10:00			`}else{`
Linting 2019-11-03 09:18:34 +10:00			`productDoc.productImage = '/uploads/placeholder.png';`
Refactoring 2019-10-26 11:08:53 +10:00			`}`
			`}else{`
Linting 2019-11-03 09:18:34 +10:00			`productDoc.productImage = product.productImage;`
Refactoring 2019-10-26 11:08:53 +10:00			`}`

			`try{`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`await db.products.updateOne({ _id: common.getId(req.body.productId) }, { $set: productDoc }, {});`
Refactoring 2019-10-26 11:08:53 +10:00			`// Update the index`
			`indexProducts(req.app)`
			`.then(() => {`
Moved form to API endpoint + fixed opts 2019-12-16 12:30:30 +10:00			`res.status(200).json({ message: 'Successfully saved', product: productDoc });`
Route separation 2018-02-05 23:20:44 +10:00			`});`
Refactoring 2019-10-26 11:08:53 +10:00			`}catch(ex){`
Moved form to API endpoint + fixed opts 2019-12-16 12:30:30 +10:00			`res.status(400).json({ message: 'Failed to save. Please try again' });`
Refactoring 2019-10-26 11:08:53 +10:00			`}`
Route separation 2018-02-05 23:20:44 +10:00			`});`

Linting 2019-12-30 12:48:45 +10:00			`// delete a product`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`router.post('/admin/product/delete', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`

Refactoring 2019-10-26 11:08:53 +10:00			`// remove the product`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`await db.products.deleteOne({ _id: common.getId(req.body.productId) }, {});`
Refactoring 2019-10-26 11:08:53 +10:00
			`// delete any images and folder`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`rimraf('public/uploads/' + req.body.productId, (err) => {`
Route separation 2018-02-05 23:20:44 +10:00			`if(err){`
			`console.info(err.stack);`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`res.status(400).json({ message: 'Failed to delete product' });`
Route separation 2018-02-05 23:20:44 +10:00			`}`

Refactoring 2019-10-26 11:08:53 +10:00			`// re-index products`
			`indexProducts(req.app)`
			`.then(() => {`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`res.status(200).json({ message: 'Product successfully deleted' });`
Route separation 2018-02-05 23:20:44 +10:00			`});`
			`});`
			`});`

			`// update the published state based on an ajax call from the frontend`
Adding discount code support (#109) Added a discount code module. Lots of work went into this. Please report any problems as issues to be fixed 2020-01-21 17:36:46 +10:00			`router.post('/admin/product/publishedState', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`

Refactoring 2019-10-26 11:08:53 +10:00			`try{`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`await db.products.updateOne({ _id: common.getId(req.body.id) }, { $set: { productPublished: common.convertBool(req.body.state) } }, { multi: false });`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`res.status(200).json({ message: 'Published state updated' });`
Refactoring 2019-10-26 11:08:53 +10:00			`}catch(ex){`
			`console.error(colors.red('Failed to update the published state: ' + ex));`
Fixing more API endpoints 2019-12-13 21:06:25 +10:00			`res.status(400).json({ message: 'Published state not updated' });`
Refactoring 2019-10-26 11:08:53 +10:00			`}`
Route separation 2018-02-05 23:20:44 +10:00			`});`

			`// set as main product image`
Refactoring 2019-10-26 11:08:53 +10:00			`router.post('/admin/product/setasmainimage', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`

Refactoring 2019-10-26 11:08:53 +10:00			`try{`
			`// update the productImage to the db`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`await db.products.updateOne({ _id: common.getId(req.body.product_id) }, { $set: { productImage: req.body.productImage } }, { multi: false });`
Refactoring 2019-10-26 11:08:53 +10:00			`res.status(200).json({ message: 'Main image successfully set' });`
			`}catch(ex){`
			`res.status(400).json({ message: 'Unable to set as main image. Please try again.' });`
			`}`
Route separation 2018-02-05 23:20:44 +10:00			`});`

			`// deletes a product image`
Refactoring 2019-10-26 11:08:53 +10:00			`router.post('/admin/product/deleteimage', restrict, checkAccess, async (req, res) => {`
Route separation 2018-02-05 23:20:44 +10:00			`const db = req.app.db;`

			`// get the productImage from the db`
Refactoring 2019-10-26 11:08:53 +10:00			`const product = await db.products.findOne({ _id: common.getId(req.body.product_id) });`
			`if(!product){`
			`res.status(400).json({ message: 'Product not found' });`
			`return;`
			`}`
			`if(req.body.productImage === product.productImage){`
			`// set the productImage to null`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`await db.products.updateOne({ _id: common.getId(req.body.product_id) }, { $set: { productImage: null } }, { multi: false });`
Refactoring 2019-10-26 11:08:53 +10:00
			`// remove the image from disk`
			`fs.unlink(path.join('public', req.body.productImage), (err) => {`
			`if(err){`
			`res.status(400).json({ message: 'Image not removed, please try again.' });`
			`}else{`
			`res.status(200).json({ message: 'Image successfully deleted' });`
			`}`
			`});`
			`}else{`
			`// remove the image from disk`
			`fs.unlink(path.join('public', req.body.productImage), (err) => {`
			`if(err){`
			`res.status(400).json({ message: 'Image not removed, please try again.' });`
			`}else{`
			`res.status(200).json({ message: 'Image successfully deleted' });`
			`}`
			`});`
			`}`
Route separation 2018-02-05 23:20:44 +10:00			`});`

			`module.exports = router;`